bfb5d12c42630091ec4eacf9eecce16a5fb763ad716cd7bb992c5ef5be3eec24 | Triage

Analysis

max time kernel
0s
max time network
17s
platform
windows7_x64
resource
win7-20231215-en
resource tags

arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
submitted
26/12/2023, 08:10

Sharing

Report Analysis Logs

General

Target

ARC-O-15880-UAEâArchirodon_Automation_Project.7z
Size

5.8MB
MD5

5bc6ccdf8e4719a8170bf43e60f7a04c
SHA1

2f9b9d12d38f2d673acdafdd35871b235d2fb507
SHA256

1a41795c7cb3811e846a1b1d176e1ab41ac5208be41b093517c362710bc07280
SHA512

8d71764e40a00a014004a8b4c551fc84be1baeffa0fb51c29ffb493fe24c52d187bbdd5146492b286c699215549e8097d15169f633a367cbc8f1b8974939c7be
SSDEEP

98304:uvlWApUyfvlkPIeMQgsH+GyuAiNJ8jSZf/P29UvrOCVyWdQKHahPPttprI:uv8An9l1DsH+GyeB5G9UvyCV9V6hPlA

Score

3^/10

Malware Config

Signatures

Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).

System Information Discovery
T1082

C:\Windows\system32\cmd.exe
cmd /c C:\Users\Admin\AppData\Local\Temp\ARC-O-15880-UAEâArchirodon_Automation_Project.7z
1⤵
PID:1964
- C:\Program Files\7-Zip\7zFM.exe
  "C:\Program Files\7-Zip\7zFM.exe" "C:\Users\Admin\AppData\Local\Temp\ARC-O-15880-UAEâArchirodon_Automation_Project.7z"
  2⤵
  PID:2804

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads